From 8b41f7c9c54fcecefec3c28cf0f328254c0ce0b8 Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Sat, 21 May 2022 16:51:46 +0100
Subject: [PATCH] feat(profiles): add some ibus related profiles.

---
 apparmor.d/groups/bus/ibus-engine-table | 19 +++++++++++++++++++
 apparmor.d/groups/bus/ibus-memconf      | 22 ++++++++++++++++++++++
 2 files changed, 41 insertions(+)
 create mode 100644 apparmor.d/groups/bus/ibus-engine-table
 create mode 100644 apparmor.d/groups/bus/ibus-memconf

diff --git a/apparmor.d/groups/bus/ibus-engine-table b/apparmor.d/groups/bus/ibus-engine-table
new file mode 100644
index 00000000..9e110491
--- /dev/null
+++ b/apparmor.d/groups/bus/ibus-engine-table
@@ -0,0 +1,19 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2022 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{libexec}/ibus-engine-table
+profile ibus-engine-table @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/python>
+
+  @{exec_path} mr,
+
+  /{usr/,}bin/python3.[0-9]* rix,
+
+  include if exists <local/ibus-engine-table>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/bus/ibus-memconf b/apparmor.d/groups/bus/ibus-memconf
new file mode 100644
index 00000000..e13dc99c
--- /dev/null
+++ b/apparmor.d/groups/bus/ibus-memconf
@@ -0,0 +1,22 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2022 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{libexec}/ibus-memconf
+profile ibus-memconf @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/nameservice-strict>
+
+  @{exec_path} mr,
+
+  /var/lib/gdm{3,}/.config/ibus/bus/ r,
+  /var/lib/gdm{3,}/.config/ibus/bus/[0-9a-f]*-unix-[0-9]* r,
+
+  owner @{user_config_dirs}/ibus/bus/{,[0-9a-f]*-unix-wayland-[0-9]} r,
+
+  include if exists <local/ibus-memconf>
+}
\ No newline at end of file